Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: ep6YJ+ZdReJiN6shDNFjCq3KflERR360eQsollSz/Eg=
Subject key identifier: FE:9E:75:9B:97:F8:3E:65:75:90:B1:36:3D:12:B5:11:5B:F0:9E:52
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019CAD22DB57F29CA2A68B6DEA7984A70BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 1042
Signing time: Mon 02 Mar 2026 06:01:08 +0000
Manifest this update: Mon 02 Mar 2026 06:01:08 +0000
Manifest next update: Tue 03 Mar 2026 06:01:08 +0000
Files and hashes: 1: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: 4V/j2V8EHVn8CgNsuy+lBqQWekAup2nWp0RH1oBvQZ4=)
2: f7qLZUl_FwNxE3w_k0K8MDDnPE4.roa (hash: iT3SrQGihsPU4xD+7248AXf2sfstLnnSHt1kFE/x28E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:db:57:f2:9c:a2:a6:8b:6d:ea:79:84:a7:0b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Mar 2 06:01:08 2026 GMT
Not After : Mar 3 06:01:08 2026 GMT
Subject: CN=fe9e759b97f83e657590b1363d12b5115bf09e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b0:4d:fc:7f:bb:a0:28:82:1f:50:ac:2a:e5:
33:ab:ea:ed:a9:6a:c9:c1:84:5e:3f:e2:f1:b0:78:
87:41:73:56:1a:bb:27:ec:ef:4e:56:d7:0a:03:ff:
1d:9c:5a:30:85:1a:23:2d:ff:d2:2d:58:c6:bf:17:
c6:1f:f0:b6:09:fd:89:46:b1:04:c3:a8:9e:aa:cf:
70:67:10:af:b8:de:cc:ec:37:60:fb:5d:f5:34:c1:
4d:af:ae:59:00:d9:9b:ac:02:54:df:7d:5b:4f:38:
d6:42:d4:b4:1c:ca:f4:71:90:a9:c4:69:7a:ac:f1:
c1:d9:1e:7c:33:f4:fa:54:c2:98:5e:17:21:66:06:
4c:3e:ea:0b:b5:f3:c6:fc:fd:09:f0:85:13:54:86:
13:7a:6b:92:41:76:5b:f4:b3:af:05:11:21:14:c5:
3f:1f:11:13:58:38:bd:08:90:f9:a8:27:e5:9d:9c:
68:19:0d:18:e5:fe:f1:51:73:df:dc:a2:28:97:1b:
40:ec:a4:6c:fc:86:41:ec:46:21:dc:a1:98:40:d9:
77:0c:fe:10:75:da:4a:ea:5c:e5:89:26:8e:c3:09:
79:90:ec:9a:30:b0:99:2d:1c:70:b8:58:f5:d1:1d:
d4:dd:38:18:41:20:62:48:73:68:14:09:49:f4:3a:
70:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9E:75:9B:97:F8:3E:65:75:90:B1:36:3D:12:B5:11:5B:F0:9E:52
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:19:19:aa:a7:6f:ce:b8:9e:d9:9b:ad:98:05:e5:b9:27:7a:
bd:ec:39:00:9f:73:76:c7:23:69:b3:a2:65:be:8a:e7:ae:08:
0f:d2:2c:cc:96:98:28:a3:0c:56:46:7d:95:75:7c:f0:15:97:
63:95:d0:27:7c:5e:eb:e8:21:e0:d0:9c:f4:d8:ed:4f:c7:15:
9b:05:09:a7:a4:85:67:ab:ba:f7:14:be:f9:78:7b:57:e8:c8:
40:ef:40:2a:c8:32:00:d4:77:13:37:61:46:d5:4f:e4:61:3b:
9c:d1:5a:73:59:5f:95:ba:7c:50:c0:d4:41:cd:f8:a1:3f:33:
4b:b6:93:3f:17:4f:3e:bc:da:40:bd:42:11:cc:56:fa:89:7d:
8e:08:d9:65:cf:8f:29:af:cd:5b:a3:6a:11:0d:4e:74:ac:2f:
b0:74:fe:7a:dd:07:b3:40:07:2f:ff:94:86:55:64:c2:4f:8b:
74:aa:a3:8b:14:4b:72:f5:d0:fc:d8:4c:c1:a3:45:b3:14:25:
5d:c2:36:8b:d8:17:24:e3:72:0d:2a:0f:70:34:b1:62:8a:5c:
d6:09:e5:36:ee:d4:97:c3:b9:3c:dc:42:9c:ad:81:c6:8a:47:
6d:37:05:3c:b0:46:21:9a:b9:b1:6b:80:07:e7:7f:ab:c5:75:
c0:89:73:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:28:26 2026 by rpki-client